SUSE addresses the “SACK Panic” TCP remote denial of service

SUSE addresses the “SACK Panic” TCP remote denial of service attacks

Security researchers from Netflix have identified three new remote denial of service attacks against the Linux TCP stack. These can be all exploited remotely as soon as a TCP port is open to the public in default settings. There are three distinct issues: CVE-2019-11477: Also known as “SACK Panic”. A integer overflow when SACK processing […]
The post SUSE addresses the “SACK Panic” TCP remote denial of service attacks appeared first on SUSE Communities.

More…